πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
β976Jan 10, 2025Updated last year
Alternatives and similar repositories for cookiemonster
Users that are interested in cookiemonster are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applicationsβ1,356Aug 7, 2025Updated 10 months ago
- Hidden parameters discovery suiteβ2,064Sep 8, 2024Updated last year
- Contextual Content Discovery Toolβ3,194Apr 29, 2024Updated 2 years ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScriptβ1,839May 22, 2024Updated 2 years ago
- Obtain GraphQL API schema even if the introspection is disabledβ1,474Dec 5, 2025Updated 6 months ago
- Managed Kubernetes at scale on DigitalOcean β’ AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β1,178Apr 3, 2026Updated 2 months ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-iconβ1,321Jan 26, 2024Updated 2 years ago
- Rust-based high performance domain permutation generator.β305Dec 2, 2023Updated 2 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,970Mar 20, 2026Updated 2 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,257Aug 14, 2024Updated last year
- declutters url lists for crawling/pentestingβ1,560Feb 23, 2025Updated last year
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ978Dec 31, 2021Updated 4 years ago
- Reverse proxies cheatsheetβ1,886Nov 4, 2023Updated 2 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!β1,398May 9, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Pull out bits of URLs provided on stdinβ1,321Aug 12, 2023Updated 2 years ago
- Filter and enrich a list of subdomains by levelβ212Sep 25, 2023Updated 2 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β1,178Jan 21, 2026Updated 4 months ago
- Prototype Pollution and useful Script Gadgetsβ1,630Jan 27, 2024Updated 2 years ago
- IIS shortname scanner written in Goβ356Mar 25, 2023Updated 3 years ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pagβ¦β530Apr 23, 2025Updated last year
- Gotator is a tool to generate DNS wordlists through permutations.β525Jul 17, 2022Updated 3 years ago
- An IIS short filename enumeration toolβ1,174Nov 25, 2024Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,044Jun 6, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β1,081Mar 24, 2026Updated 2 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β754Dec 19, 2023Updated 2 years ago
- Content-Type Researchβ666Jun 29, 2025Updated 11 months ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,080Jan 2, 2024Updated 2 years ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.β268Feb 5, 2026Updated 4 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devicesβ645Jul 7, 2025Updated 11 months ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β1,073Jan 3, 2025Updated last year
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secretsβ1,565Mar 8, 2026Updated 3 months ago
- Client Side Prototype Pollution Scannerβ529Sep 17, 2022Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- β563Mar 27, 2025Updated last year
- Rockyou for web fuzzingβ3,166Mar 11, 2026Updated 3 months ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.β158Nov 24, 2023Updated 2 years ago
- A rapid API for the Project Sonar datasetβ656May 5, 2023Updated 3 years ago
- β698Jul 4, 2022Updated 3 years ago
- Burp extension to create target specific and tailored wordlist from burp history.β259Dec 8, 2021Updated 4 years ago
- Making Favicon.ico based Recon Great again !β1,290Aug 29, 2023Updated 2 years ago